www.heise.de – Complaint Upheld (Germany, 2023)
Germany's data protection authority found that the website www.heise.de used cookies without getting proper consent from visitors. The site placed cookies before users interacted with the cookie banner, which is against GDPR rules. This decision highlights the importance of clear and upfront information about cookie use on websites.
What happened
The website www.heise.de placed cookies on users' devices before they interacted with the cookie banner.
Who was affected
Visitors to www.heise.de who had cookies placed on their devices without prior consent.
What the authority found
The authority concluded that www.heise.de violated GDPR by placing non-essential cookies without obtaining prior consent from users.
Why this matters
This case underscores the need for websites to ensure that cookies are only placed after clear consent is obtained. It serves as a reminder for website operators to provide transparent and accessible information about cookie use to comply with GDPR.
GDPR Articles Cited
Non-essential cookies were installed before user interaction with the cookie banner, and essential information about data processing was missing.
Outcome
Complaint Upheld
A data subject complaint that was upheld by the DPA.
Violations (2)
Non-essential cookies (tracking, advertising) are placed on the user's device before obtaining valid consent.
Art. 6(1) GDPR
The cookie banner or cookie policy provides vague, incomplete, or unclear information about what cookies are used and why.
Art. 12, 13 GDPR
Related Enforcement Actions (0)
No other enforcement actions found for www.heise.de in DE
This is the only recorded action for this entity in this jurisdiction.
Similar Cases
Enforcement actions with similar violations
Details
About this data
Cite as: Cookie Fines. www.heise.de - Germany (2023). Retrieved from cookiefines.eu
Last updated: